The user can borrow more than their provided collateral

Everyone can borrow more than the allowed borrow amount

Cross-chain collaterals are wrongly calculated in the borrowWithInterest function

Incorrect handling of cross-chain borrow updates

Incorrect calculation of borrowed amount in liquidateBorrowAllowedInternal

Taking YUSD as a fee during redeem approval can inflate the token

Maximum redeem cap can easily be reached

A malicious user can extend the staking duration forever

Incorrect decimal handling in `Auction::buy()` leads to massive overpayment for ZENO tokens

Treasury Contract Deposit Function Can Be Frontrun To Deny Protocol Operations

Impossible to rescue funds from `RToken` contract

Minting zero tokens when underlyingToken is not Ether in cashIn()

[H-01] Auction tokens will be lost forever when auction ends without bids

Funds from canceled raffles will be stuck in the contract

TokenManager - Unlimited withdraw

Native token withdrawal fails until manually approved

Token withdrawal fails until someone manually approves spending

Fund Withdrawal Flaw in preMarket Allows Users to Avoid Settlement Obligations

Wrong minting logic based on total token count across generations

There is no slippage check in the `nuke()` function.

Discrepancy between nfts minted, price of nft when a generation changes & position of `_incrementGeneration()` inside `_mintInternal()` & `_mintNewEntity()`

Single plot can be occupied by multiple renters

Incorrect check of ownerOf for tokenId during voting

Everyone can add an additional amount to an existing staking position

Blocking voters from receiving extra bribe rewards

Adversary can prevent updating price feed addresses by creating poisonous proposals ending in `_confirm`

Withdrawing with amount = 0 will forcefully set name and symbol to default and disable some functions for token subject

Rewards can be drained because of lack of access control

Looping over unbounded `pendingStakes` array can lead to permanent DoS and frozen funds

`costInEuros` calculation will incur precision loss due to division before multiplication

Prime.sol - User can claim Prime token without having any staked XVS, because his `stakedAt` isn't reset whenever he is issued an irrevocable token.

Not cleaned votes to other recipient statuses

Chain support cannot be removed or cleared in bridge contracts

`UniV3LiquidityAMO::recoverERC721` will cause `ERC721` tokens to be permanently locked in `rdpxV2Core`

Tokens with less than 18 decimals allow for draining of funds

Sandwich attack to steal all ERC-20 tokens in the Fees contract

Fee on transfer tokens will cause users to lose funds

The `borrow` and `refinance` functions can be front-run by the pool lender to set high interest rates

No expiration deadline leads to losing a lot of funds

Returned values of Chainlink Oracle are not verified